DARKNAVY @DarkNavyOrg
Cybersecurity enthusiasts from DARKNAVY. Achieve, Analyze, Attack *Oops. darknavy.org Joined November 2023-
Tweets105
-
Followers5K
-
Following77
-
Likes113
While Mythos showed what frontier model might become, we asked a different question: With a dedicated security harness, can open-source LLMs approach Mythos-level vulnerability research on real targets? Meet deepsec, DARKNAVY's attempt to answer. darknavy.org/blog/deepsec_c…
Thank you to @Qualcomm for the invitation! We are thrilled to be working alongside mobile vendors to contribute to the security of the ecosystem. Come chat with our team members if you’re also at the Qualcomm Security Summit!
🏙️ Awesome conference in San Diego - Qualcomm Product Security Summit. 📡 Feel free to say hi to me - I am in a DARKNAVY hoody! #qpss26
Coding agent hacking series 3/3: Cursor. The "Auto-Run in Sandbox" mode of @cursor_ai is great: user-friendly, convenient, and supposedly safer. But just like Codex CLI, following content from a remote URL can chain vulnerabilities from prompt injection to unauthorized command execution outside the sandbox, without further user approval under this mode.
Coding agent hacking series 2/3: Codex CLI. It looks seriously secure: sandboxing by default, built in Rust, reviewed by top LLMs from @OpenAI. But in our latest demo, one web fetch can chain multiple vulnerabilities from prompt injection to unauthorized command execution outside the sandbox in one shot!
Coding agent hacking series 1/3: Claude Code. @AnthropicAI is building impressively powerful cyber models like Mythos. However, their core coding product can still stumble on security boundaries beyond prompt injection. Our demo shows how web content exploring can be chained with other vulnerabilities to bypass permission checks and execute attacker's commands without your approval ;)
The original video has a “text” issue so we re-uploaded everything. Thanks to @roddux for pointing it out!(4/3)
We are committed to freeing human researchers from tedious, repetitive tasks so they can focus on real innovation. Stay tuned for our upcoming release of an AI-powered, end-to-end security research platform! (3/3)
We obtained root privilege on the S26 (Exynos 2600 Chipset), the latest flagship smartphone from Samsung. To our knowledge, this is the first root exploit for Exynos S26 since Samsung removed bootloader unlocking option in One UI 8. It is exploitable from APP context, so we make a cmd wrapper app for demo👇(1/n)
Our AI Agent popped a root shell on Ubuntu 26.04 on the first day it was released :)
😃Just got a bug confirmed on @immunefi that we found using our client auditor skill.
On 2026-03-27 03:40:34 PM +UTC, the #EST token / BNBDeposit system on #BSC was exploited through a **flash-loan-assisted reward-accounting flaw** in `BNBDeposit`, amplified by **fee-exempt routing and pair-state manipulation** in EST. Based on our exploit investigation skill: github.com/DarkNavySecuri… Check threads for specific code illustration.
iOS/macOS 26.4 addresses two vulnerabilities we reported before. Both were discovered by our under-development AI agentic system, which is capable of processing both binary and source code ;)
Over the past few weeks we've been building AI-powered security skills for Web3, covering smart contract auditing, blockchain client auditing, and onchain exploit investigation. Here is the skills repo👇 github.com/DarkNavySecuri…
We've just open-sourced a preview version of our agent skills for Web3 security! Enjoy your playing :)
These skills have helped us earn $21K on Immunefi @immunefi and independently discover a vulnerability in rippled @XRPLF @RippleXDev, the XRP Ledger's core node software, that was officially patched. Every exploit breakdown we've posted before was built with these skills.
Our AI agent researcher @Defi_Nerd_sec is delivering in Web3! Although this case was flagged as a duplicate, the agent independently generated a working exploit, going beyond discovery and into execution. Cases like this suggest AI-driven workflows are beginning to cover a much larger share of the exploit chain, putting pressure on the security posture of the entire industry. Glad to see it addressed! @XRPLF @RippleXDev Full credit to the original reporter as well👍
XRP Ledger Software version 3.1.2 is available. This version is fixing an edge case that can cause outages on public facing nodes. Please update your nodes as soon as possible to this new version. More details in the release notes: github.com/XRPLF/rippled/…
The bug being exploited was identified during our evaluation of the internal AI Agent, which automatically submit some of the findings with PoCs. Very surprised to see @osec_io take it to the another level! Also look forward to AI automatically generating such complex exploits.
We achieved a guest-to-host escape by exploiting a QEMU 0-day where the bytes written out of bounds were uncontrolled. Full breakdown of the technique, glibc allocator behavior, and our heap spray/RIP-control primitive ↓
Outis @iamoutiz
65 Followers 3K Following
Iam-M-i-r-z-a @O_Mirzaaa
1 Followers 2K Following
Harvesto | McDonald a... @Harvesto12
1K Followers 2K Following Smart Contract Security Researcher and Auditor
Abdullah AL-hatem @AlHatem73428
3 Followers 268 Following
Horsie :) @realhorsie
9 Followers 198 Following Opinions have been independently verified to conflict with employer's. Computerz n stuff, yknow?
Aaaaaaaa @DerZerstorer_00
1 Followers 207 Following
Changi @cbpbco
0 Followers 32 Following
Boyd Fields @boydfields
43 Followers 1K Following Tech superhero 🦸♂️ Solving problems and making magic happen 💻️ 20+ years in IT management, and still having fun! 💪️ #ITManagement | #ManagedServiceProvider
Tarek @tarekeleter
117 Followers 2K Following Security Engineer - Incident Response @StarknetFndn | All views here are my own. #DFIR Ex - @Mozilla, @Livenation, @Ticketmaster
GS BP @bp_gs61277
1 Followers 28 Following
Americo De Gruttola @AmeDeGruttola
28 Followers 3K Following Founder, Blockchain Innovation Manager Certificato, Privacy Specialist (GDPR), Entrepreneur, Startup Mentor, Public Speaker, Writer
Kelvin Yavamunda @yavamunda
15 Followers 178 Following
Jane Smith @JaneSmithhie1
2 Followers 97 Following
yua1337🔺 @Yua_TheHacker
286 Followers 640 Following looking for a pair of AVAX crocs - pls sell it to me oppa
ping @sun1ping
1 Followers 26 Following
mattezell @mattezell
252 Followers 3K Following Software engineer by day - scatterbrain by night. Tech Enthusiast. Space fanboy. https://t.co/kod1uh0Utq
Missy the OSINT Coyot... @MissytheCoyote
209 Followers 875 Following Missy the Coyote is a soft pet (Missy the Coyote is a wild dog!) Missy the Coyote is a helpful animal (Missy the Coyote does what she wants!)
Twilight @twilight0763
0 Followers 63 Following
luckyu @uuulucky
574 Followers 242 Following
Francisco Antonio | A... @a93918
5 Followers 310 Following 18yo founder from Brazil. Building Auren Research — agentic AI for security, code research, and defensive infra. Creator of Lunaris Guard.
Jafork @jakob21575
0 Followers 9 Following
ACai @ACai_sec
1K Followers 214 Following Smart Contract Security Researcher 🫡 Attack Analysis & Daily Thinking & Project Learning Be water | Build yourself
DD @suveino
3 Followers 514 Following
lynchan @lynchan79
54 Followers 3K Following
LuciusWang @LuciusWang45
10 Followers 231 Following
mishoko ~/ ⛓ @0xmishoko
446 Followers 1K Following software developer ⚔️ exploit hunter⚔️ web3 security ⚔️ vae victis | building https://t.co/R3eOiVThxa (Solidity CPG and static analyzer) | prev. web2 dev @adidas @eBay
Vaishnav Tadla @TadlaVaishnav
2 Followers 34 Following
Artur Brasil @arturbrasil
118 Followers 1K Following DevOps professional, with Linux, Perl, Chef , AWS and more
Jiu_Ban @jiu_ban_
1 Followers 86 Following
1HateTheWorld @Eoon777
0 Followers 35 Following
SparrowHawk @SparrowHawk025
6 Followers 165 Following
Charlie Beaufils @lichardassault_
0 Followers 78 Following
Yash Prasad @PrasadYash75761
12 Followers 287 Following
Yannick Wang @h1k0naka
4 Followers 141 Following Cyber Team @ Xiaomi Mimo PhD Student @ UCAS IIE pre-CTFer @ Never Stop Exploiting Cyber Security | Vulnerability Discovery | AI for Security
Ram Lal @Namkeen_Bhujiya
9 Followers 533 Following
FuzzingLabs @FuzzingLabs
9K Followers 4K Following Research-oriented Cybersecurity startup specializing in #fuzzing, Vulnerability Research & Offensive security on Mobile, Browser, AI/LLM, Network & Blockchain.
b33f | 🇺🇦✊ @FuzzySec
33K Followers 1K Following 意志 / mobile research @ ▓▓▓▓▓ / Team 501 / ex IBM Capability Lead & FireEye TORE / I rewrite pointers and read memory / AI Psychoanalyst / Teaching @CalypsoLabs
YZZhuang @yz_zhuang
22 Followers 27 Following
Defi Nerd @Defi_Nerd_sec
596 Followers 94 Following Web3/DeFi Security Researcher & Enthusiast. Hosted by DARKNAVY @DarkNavyOrg.
Samuel Groß @5aelo
25K Followers 524 Following Working on Project Zero, Big Sleep, and V8 Security. Personal account. Also @[email protected] and https://t.co/aVitnPjBie
stephen @_tsuro
10K Followers 524 Following @v8js security, CTFs and CPU vulnz. LCHL. @[email protected]
ohjin @pwn_expoit
4K Followers 453 Following I'm still hungry. I will be world-class, @[email protected]
loeklvlh @loeklvlh
9 Followers 20 Following
L4ys @_L4ys
4K Followers 1K Following Co-Founder of @TrapaSecurity and @PwnableTW MSRC Top 100 / ZDI Platinum Hunting bugs for fun
Taszk Security Labs @TaszkSecLabs
2K Followers 4 Following Security consulting and vulnerability research services for a mobile connected world. | We find needles in your software haystack.
heige @80vul
11K Followers 1K Following (a.k.a. SuperHei) ZoomEye https://t.co/fzvFAoPrvG SeeBug https://t.co/ldKpbho6eg KCon https://t.co/46w4vXpfkv AiPy https://t.co/bFgrqc8h9s,Team: 0x557
offensivecon @offensive_con
28K Followers 1 Following OffensiveCon is a technical international security conference focused on offensive security only. Organised by @Binary_Gecko. Stay tuned #Offensivecon #Tokyo.
POC_Crew @POC_Crew
8K Followers 690 Following Organizer of Zer0Con, MOSEC and #POC2026 (https://t.co/6pIiBKhgxm)
Nir Ohfeld @nirohfeld
5K Followers 953 Following Head of Vulnerability Research @wiz_io | @Microsoft MVR (2021-2025) | Pwn2Own 2025 | @Forbes 30 Under 30 | Ask me anything about https://t.co/QfzcO03PpS
Md Ismail Šojal �... @0x0SojalSec
45K Followers 5K Following Cyber_Security_Re-searcher || Ai Re-searcher || AI-Sec|| Malware Analysis II iOS || Pwn || 0SINT || Project AI-StrikeSec || 0ldAccounts Suspended @0xSojalSec ||
hacker.house @hackerfantastic
106K Followers 5K Following Co-Founder @MyHackerHouse 💾 | Cybersecurity & Web3 🌐 | Author of Hands-on Hacking (ISBN 9781119561453) 📖 | Offensive Lua 💻 | ✝️
sakura @eternalsakura13
9K Followers 206 Following Lead Security Researcher @zellic_io. Top 3 Chrome VRP. Top 2 Facebook Whitehat. MSRC MVRs 9th. BlackHat Asia/USA & Zer0Con & OffensiveCon speaker.
BGT @realBrightiup
7K Followers 809 Following
Kevin2600 @Kevin2600
11K Followers 62 Following
keenjoy95 @keenjoy95
642 Followers 140 Following
deepsec.cc @deepsec_cc
395 Followers 0 Following
canyie 残页 @canyie2977
1K Followers 203 Following 脑袋里只装了棉花糖的凄惨残页 Android 开发&安全研究 20岁大二学生前中职 所有使用或曾经使用过 blockchain 的人会被屏蔽 https://t.co/JXDB06hG9M https://t.co/8r7kqyERQV https://t.co/Js3e2AU7S4
Boris Larin @oct0xor
19K Followers 704 Following Former console hacker (PS3/PS4). Hunting in the wild 0-days at Kaspersky GReAT. All tweets are my own.
1377 High-yield Nukes @buptsb
2K Followers 1K Following
Dennis | Mind Netwo... @NuIlPtr
6K Followers 35 Following Chief Security Officer of Mind Network @mindnetwork_xyz
Yuki Chen @guhe120
10K Followers 280 Following 古河, Indepent security researcher, Bug bounty, ACG Otaku, Pwn2Own 15/16/17, PwnFest16,TianfuCup 18/19/20, 5 times MSRC MVR yearly Top 1. Got two pwnie awards.
itewqq @lyq_sqsp
2K Followers 693 Following Security researcher @DarknavyOrg. CTF player @0ops_ctf. Somehow got a PhD on hardware stuff @SJTU1896. Opinions/Shitposts are my own.
Xion @0x10n
5K Followers 131 Following CMU CSD PhD student | '24/'25 Top#0 Chrome Researcher | P2O Vancouver '24, TyphoonPWN '24/'25, DEFCON CTF 31-33, ... | PPP, KAIST GoN '18, @zer0pts
simo @_simo36
7K Followers 126 Following
p0up0u @_p0up0u_
2K Followers 0 FollowingTrends for United States
You might like
